AWS Certified Solutions Architect – Professional — Question 147

The two policies that you attach to an IAM role are the access policy and the trust policy. The trust policy identifies who can assume the role and grants the permission in the AWS Lambda account principal by adding the _______ action.

Answer options

• A. aws:AssumeAdmin
• B. lambda:InvokeAsync
• C. sts:InvokeAsync
• D. sts:AssumeRole

Correct answer: D

Explanation

The correct answer is D, sts:AssumeRole, as it specifically allows a principal to assume the IAM role. The other options are either incorrect actions or not related to assuming roles in AWS, which makes them unsuitable for this context.